CVE-2026-4348 - BetterDocs Pro <= 3.7.0 - Unauthenticated SQL Injection via Encyclopedia 'limit' Parameter
CVE ID :CVE-2026-4348 Published : May 7, 2026, 6:16 a.m. | 39 minutes ago Description :The BetterDocs Pro plugin for WordPress is vulnerable to SQL Injection via the `get_current_letter_docs` and `docs_sort_by_letter` AJAX actions in all versions up to, and including, 3.7.0. This is due to the
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Sam Altman tükürdüğünü yaladı
- [CYBER] My .NET Docker image was 900MB - here's how I fixed it (and what I got wrong with JWT)
- [CYBER] Researchers Spot Uptick in Use of Vercel for Phishing Campaigns
- [CYBER] Gunboat diplomacy returns to Hormuz
- [CYBER] When a Radio Signal Stops a Train
- [CYBER] Hackers Exploit Google Ads to Steal GoDaddy ManageWP Logins